CVE-2008-0766

Description

Stack-based buffer overflow in RpmSrvc.exe in Brooks Remote Print Manager (RPM) 4.5.1.11 and earlier (Elite and Select) for Windows allows remote attackers to execute arbitrary code via a long filename in a "Receive data file" LPD command. NOTE: some of these details are obtained from third party information.

Affected products

• brooks_internet_software / rpm_remote_print_manager_elite4.5.1.11
• brooks_internet_software / rpm_remote_print_manager_select4.5.1.11

References

• VENDOR_ADVISORYhttp://secunia.com/advisories/28905
• MISChttp://aluigi.altervista.org/adv/rpmlpdbof-adv.txt
• MISChttp://www.securityfocus.com/bid/27742
• MISChttp://www.securityfocus.com/archive/1/488010/100/0/threaded
• VENDOR_ADVISORYhttp://www.vupen.com/english/advisories/2008/0501
• MISChttps://exchange.xforce.ibmcloud.com/vulnerabilities/40432